Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:AEA013AB15448A6F2421E47BC9DE25FA
HistoryMar 24, 2006 - 12:00 a.m.

Microsoft Jet Database Engine buffer overflow

2006-03-2400:00:00
SAINT Corporation
download.saintcorporation.com
8

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.153 Low

EPSS

Percentile

95.9%

JSON

Added: 03/24/2006
CVE: CVE-2005-0944
BID: 12960
OSVDB: 15187

Background

The Microsoft Jet Database Engine provides data access functionality for a number of applications.

Problem

An input validation vulnerability in the Microsoft Jet Database Engine could lead to command execution when a user opens a specially crafted Microsoft Access file.

Resolution

Avoid opening Microsoft Access database files from untrusted sources.

References

<http://www.kb.cert.org/vuls/id/176380&gt;

Limitations

Successful exploitation requires a user to download the exploit file and open it in Microsoft Access.

Platforms

Windows

Related

checkpoint_advisories 1
cert 1
saint 3
cvelist 3
nvd 3
cve 3
openvas 2
nessus 1
prion 2
checkpoint_advisories
checkpoint_advisories
Microsoft Jet DB Engine Buffer Overflow (CVE-2005-0944)
2009-10-06 00:00:00
cert
cert
Microsoft Jet Database Engine fails to properly validate Access database files
2005-10-03 00:00:00
saint
saint
Microsoft Jet Database Engine buffer overflow
2006-03-24 00:00:00
Microsoft Jet Database Engine buffer overflow
2006-03-24 00:00:00
Microsoft Jet Database Engine buffer overflow
2006-03-24 00:00:00
cvelist
cvelist
CVE-2005-0944
2005-04-03 05:00:00
CVE-2007-6026
2007-11-20 00:00:00
CVE-2007-6357
2007-12-15 01:00:00
nvd
nvd
CVE-2005-0944
2005-05-02 04:00:00
CVE-2007-6026
2007-11-20 00:46:00
CVE-2007-6357
2007-12-15 01:46:00
cve
cve
CVE-2005-0944
2005-05-02 04:00:00
CVE-2007-6026
2007-11-20 00:46:00
CVE-2007-6357
2007-12-15 01:46:00
openvas
openvas
Microsoft Jet Database Engine Vulnerability (MS08-028)
2008-09-03 00:00:00
Windows Vulnerability in Microsoft Jet Database Engine
2008-09-03 00:00:00
nessus
nessus
MS08-028: Vulnerability in Microsoft Jet Database Engine Could Allow Remote Code Execution (950749)
2008-05-13 00:00:00
prion
prion
Stack overflow
2007-11-20 00:46:00
Stack overflow
2007-12-15 01:46:00

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.153 Low

EPSS

Percentile

95.9%

JSON
Related for SAINT:AEA013AB15448A6F2421E47BC9DE25FA
checkpoint_advisories1cert1saint3cvelist3nvd3cve3openvas2nessus1prion2